IBM Support

JR48802: CMVC 233233 - Management Center is vulnerable to a cross-site scripting attack

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • Management Center is vulnerable to a cross-site scripting attack
    

Local fix

Problem summary

  • USERS AFFECTED:
     WebSphere Commerce users who use Management Center
    
     PROBLEM ABSTRACT:
     Management Center is vulnerable to a cross-site scripting
    attack
    
     BUSINESS IMPACT:
     Possible security vulnerability
    
     RECOMMENDATION:
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    JR48802

  • Reported component name

    WC BUS EDITION

  • Reported component ID

    5724I3800

  • Reported release

    700

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2013-12-12

  • Closed date

    2014-03-26

  • Last modified date

    2014-03-26

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WC BUS EDITION

  • Fixed component ID

    5724I3800

Applicable component levels

  • R700 PSY

       UP

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYSYL","label":"WebSphere Commerce Enterprise"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.0","Edition":"","Line of Business":{"code":"","label":""}}]

Document Information

Modified date:
26 March 2014